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AMENDMENTS TO THE CLAIMS 

1. (Currently Amended) A method of associating a permission set with a 
code assembly based on evidence characterized by different levels of trust, the 
Ttiftthn H implemented at least in part by a computing device comprising: 

identifying a first condition for association with the permission set, wherein the 
first condition references a first element of evidence, wherein the first element of 
evidence is implicitly truste d and wherein the permission set is used to control 
operation of the code assembly du ring run-time: 

identifying a second condition for association with the permission set, wherein 
the second condition references a second element of evidence, wherein the second 
element of evidence is initially untrusted; 

determining whether the first condition is satisfied by the first element of 
evidence; 

determining whether the second element of evidence should be trusted based 

on the first condition; 

determining whether the second condition is satisfied by the second element of 

evidence; and 

associating the permission set with the code assembly, if both the first 
condition and the second condition are satisfied. 
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2. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a first condition comprises: 

receiving the first condition and the first element of evidence within a 
membership criterion. 

3. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a second condition comprises: 

receiving the second condition and the second element of evidence within a 
membership criterion. 

4. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a first condition comprises: 

receiving the first condition in a membership criterion; and 
receiving the first element of evidence based on a reference included in the 
membership criterion. 

5. (Previously Presented) The method of claim 1 wherein the operation of 
receiving a second condition comprises: 

receiving the second condition in a membership criterion; and 
receiving the second element of evidence based on a reference included in the 
membership criterion. 
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6-7- (Cancelled) 

8. (Original) The method of claim 1 further comprising: 

generating a collection of code groups, each code group being associated with 
a membership criterion and a permission set, wherein the first condition and the 
second condition are received in the membership criterion associated with one of the 
code groups; and 

determining whether the code assembly is a member of the code group, based 
on the membership criterion, 

9. (Original) The method of claim 8 wherein the associating operation 
comprises; 

associating the permission set of the code group with the code assembly, if the 
code assembly is determined to be a member of the code group. 

10. (Previously Presented) The method of claim 1 further comprising: 
receiving at least a third condition referencing a third element of evidence, 

wherein the third element is initially untrusted; 

determining whether the third element of evidence should be trusted based on 
the second condition; and 

leefchuyes pile 50^324-9256 5 Of 33 ATTORNEY DOCKET NO. MS1-I&75US 

RESPONSE TO OFFICE ACTION DATED 8/16/2005 APPLICATION NO. 09/59S»814 



PAGE 7/20 * RCVD AT 1/30/2006 5:53:15 PM [Eastern Standard Time] * SVR:USPTO-EFXRF-6/25 * DNIS:2738300 * CSiD: 15093238979 * DURATION (mm-ss):D448 



JAN 30 2006 14:58 FR 00 



15093238979 TO 15712738300 P. 08/20 



determining whether the third condition is satisfied by the third element of the 
evidence, wherein the associating operation comprises associating the permission set 
with the code assembly, if the first condition, the second condition, and the third 
condition are satisfied. 

11. (Currently Amended) One or more compute r-readable media having 
instructions that, when executed on one or more processors perform_A computer 
program produot e ncoding a computor program for cxcouting on a computer system a 
computer aprocess for associating a permission set with a code assembly based on 
evidence characterized by different levels of trus t, the computor proo e ss comprising: 

generating a collection of code groups, wherein each code group is used to 
define a category of related code assemblies, each code group being associated with a 
membership criterion and a permission se t used to control operation of the code 
assembly during run-time: 

receiving the membership criterion associated with one of the code groups, the 
membership criterion including at least a first condition and a second condition; 

referencing a first element of evidence in the first condition, wherein the first 
element of evidence is trusted independent of other evidence and conditions; 

referencing a second element of evidence in the second condition, wherein the 
second element of evidence is initially untrusted; 

determining whether the first condition is satisfied by the first element of 
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evidence; 

determining whether the second element of evidence should be trusted based 
on the first condition; 

determining whether the second condition is satisfied by the second element of 
evidence; 

evaluating the first condition and the second condition using a logical 
operation to determine membership of the code assembly in the code group; and 

associating the permission set with the code assembly, if the code assembly is 
determined to be a member of the code group. 

12. (Currently Amended) One or more computer-readable media according 
to The computer program product of claim 1 1 where in the computer process further 
comprises: 

receiving at least a third condition referencing a third element of evidence, 
wherein the third element is initially untrusted; 

determining whether the third element of evidence should be trusted based on 
the second condition; and 

determining whether the third condition is satisfied by the third element of 
evidence, wherein the associating operation comprises associating the permission set 
with the code assembly, if the first condition, the second condition, and the third 
condition are satisfied. 
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13. (Currently Amended) (W nr more corner-readable media having 
^ mr nter- e x e cutab^ for performing A oump iU u d uta ji^nl rinhnm>r 1 i n 

u u u uio r wave by a i mputing ny blu m and on rnrlix ij i u uuiu puttr V r*C™™ fa r 

ujLLLUliu£ Q I"*™ I™"- » method of a ssociating a permission set with a code 

assembly based on evidence characterized by different levels of teu Mho computer 
prooooo comprising: 

receiving a first condition referencing a first element of evidence, wherein the 
first condition is associated with the permission set and the first element of evidence 
is trusted independent of other evidence and conditions; 

receiving a second condition referencing a second element of evidence, 
wherein the second condition is associated with the permission set and the second 

element is initially untrusted; 

determining whether the first condition is satisfied by the first element of 

evidence; 

determining whether the second element should be trusted based on the first 
condition; 

determining whether the second condition is satisfied by the second element of 
evidence; and 

associating the permission set with the code assembly, if both the first and 
second conditions are catidie H , wherein the permission set is used to control operation 
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of the code assembly during run-time . 

14. (Currently Amended) One or more computer-readable media having 
instructions that when executed on one or more computing processors, perform A 
computer program storage medium readabl e by a - computer s ystem and enooding a 
computer program for e x e cuting a comput e r ajrocess for associating a permission set 
with a code assembly based on evidence characterized by different levels of trusv&e 
computer process comprising: 

receiving at least a first condition referencing a first element of evidence, 
wherein the first condition is associated with the permission set and the first element 
of evidence is trusted independent of other evidence and conditions; 

receiving at least a second condition referencing a second element of evidence, 
wherein the second condition is associated with the permission set and the second 
element is initially untrusted; 

determining whether the first condition is satisfied by the first element of 
evidence; 

determining whether the second element of evidence should be trusted base 
deH -based on the first condition; 

determining whether the second condition is satisfied by the second element of 
evidence; and 

associating the permission set with the code assembly, if both the first and 
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second conditions are satisfie d, wherein the permission set is used to control operation 
of the code assembly during run-time . 

15. (Currently Amended) A policy manager for associating a permission 
set with a code assembly based on evidence characterized by different levels of trust, 
the policy manage r implemented bv one or more computing devices comprising: 

a code collection generator generating a collection of code groups, wherein 
each code group is used to define a category of related code assemblies, e ach code 
group being associated with the membership criterion and a permission se t used to 
control operation of the code assembly during run-time ; 

a membership evaluator determining if the code assembly is a member of the 
code group by evaluating at least a first condition and a second condition associated 
with one of the code groups, the first condition referencing an implicitly trusted first 
element of evidence; the second condition referencing an initially untrusted second 
element of evidence, wherein a determination of trust associated with the second 
element of evidence is based on the first condition; and 

a permission set generator associating the permission set of the code group 
with the code assembly, if the code assembly is determined to be a member of the 
code group. 

Iee*hayes p«C 509»324-9256 1 0 of 33 ATTORNEY DOCKET NO. MS W 8750$ 

RESPONSE TO OFFICE ACTION DATED 8/1 6/2005 APPLICATION NO. 09/598*814 



PAGE 12/20 1 RCVD AT 1/30/2006 5:53:15 PM [Eastern Standard Time] * SVR:USPTO-EFXRF-6/25 * DNIS:2738300 * CSID: 1 5093238979 * DURATION (mm-ss):04«48 



JPN 30 2006 14:59 FR 00 



15093238979 TO 15712738300 P. 13/20 



16. (Previously Presented) The policy manager of claim 15 wherein the 
membership evaluator further receives at least a third condition referencing an 
initially untrusted third element of evidence, wherein the third condition is associated 
with the permission set and a determination of trust associated withthe third element 
of evidence is dependent upon the second condition, and determines whether the third 
condition is satisfied by the third element of evidence, and 

wherein the permission set generator associates the permission set with the 
code assembly, if the first condition, the second conditioned, and the third conditions 
are satisfied. 

17. (Currently Amended) One or more computer-readable media having 
instructions that when executed on one or more processors, perform A oomputer 
program product e ncoding o computer program for ex e cuting on a oomputer syst e m a 
computer ajrocess for associating a permission set with a code assembly based on 
evidence characterized by different levels of trust, the computer process comprising; 

receiving one or more first conditions, each first condition being associated 
with one or more first elements of evidence, wherein each first condition is associated 
with the permission se t used to control operation of the code assembly during run- 
time: 

determining whether each first condition is satisfied by an associated first 
element of evidence; 
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generating an indication for each first condition that is satisfied; 

receiving a second condition associated with the permission set; 

determining whether the second condition is satisfied based on the indications, 
wherein a level of trust associated with the indications depends upon a first condition 
of the one or more first conditions; and 

associating the permission set with the code assembly, if both the first 
condition in the second condition are satisfied. 

18. (Currently Amended) or more computer-readable media according 
toTho computer piumam prortiint nf claim 17 wherein the indication is associated 
with the first value associated with the first condition, and the operation of 
determining whether the second condition is satisfied comprises: 

collecting fce-a_first value and additional values associated with other satisfied 
conditions to provide collected values; 

summing the collected values to provide a sum; and 

evaluating the sum against &e-a_threshold to determine whether the second 
condition is satisfied. 

19. (Currently Amended) One or more c omputer-readable media according 
toJH K computer program - of - c laim 17 wherein at least one first element of evidence 
includes initially untrusted evidence. 
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20. (Currently Amended) One or more computer-readable media according 
to Tho computer program of claims 17 wherein at least one indication includes 
initially untrusted evidence. 

2L (Currently Amended) One or more computer-readable media according 
to The computer program of claim 17 wherein the computer process further 
comprises: 

generating an indication for each first condition that is not satisfied. 
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